# This address finds a quarter of all Peercoin blocks. And some implication

According to this page of blockr stakes in the address P8tx5ggfB6T873N4ubwSnTCZxXGEX1Nf9E finds 200 POS blocks from 2014-04-22 21:59:14 to 04-27 20:45:10 (118.8 hours, about 5 days). The block chain has 852 blocks in this period. This means the address finds 23.5% blocks in the block chain.

There are 44 consecutive 2-chain blocks found by this address, six seven 3-chains, and one 4-chain. Assuming finding POS is random, the probability of the address finding its block after any block is p, then the probability of finding a 4-chain (three in a row after one of its blocks) is p^3, which equals 1/200, therefore we can calculate p=1/5.8

We now know that getting a 6-chain the address needs to find 200*5.8^2 = 6800 blocks. At current speed this is about 170 days.

The owner of this address has two chances in a year to double spend!

This address probably belongs to one of the exchanges. It has 547,588 PPC in balance, which is only about 2.5% of total Peercoin in existence. There are many stakes in this address. The stakes that find the blocks are typically several tens to 200PPCs ( a more accurate measurement can be taken but I only checked several), meaning that the address has 2,000-10,000 such stakes. Because it uses only 200 in 5 days, these stakes can last for 50-250 days. The 30-day waiting period is not an obstacle to maintain the level of block-finding rate.

Someone with 10% total Peercoins can therefore generate POS blocks so fast that he could own the block chain. (a s% increase of your stake will increase your chance by (1+s%)^6 ) Well since we don’t know the owner of the address have other addresses, maybe someone has been having 6-chains all the time but never (or not yet) used it to double spend (or we haven’t found out)

I am somewhat worried. This is way too much easier than I thought. Extending 6-block confirmation to 8-block will decrease the address’ chance of 6-chain to once every ~15 years. But a 10% owner can still have a good chance. One reason why this address finds so many blocks is that there must be only a small number of Peercoins minting. Proportionally this address should only get 2.5% blocks. It gets 9 times as much means that only ~10% coins are minting. Everyone should mint for the coins’ safety.

``````  Wow, that person must love to mint ! On a more serious note, at this moment in time, this is a concern. I think this issue stems from the fact that  not enough people are minting at the moment (like OP mentioned), and I believe this is mostly down to its complicated process and people being unfamiliar with how it works.That's certainly why I don't mint at the moment. Now, the solution to this is obviously further wallet development, better/more explanations as to how minting works and its benefits.
There’s still a lot of work to be done

Cheers.

This address P8tx5ggfB6T873N4ubwSnTCZxXGEX1Nf9E at present minted the most PoS blocks as seen from http://ppc.stakexplorer.com/stat/PoSMinerTop1000.html

The good news is that more and more people start to do PoS mining. As seen from the above link, that address obtains ~ 28% of total number of PoS blocks since the start of the Peercoin network, but recently as mhps pointed out that it only got ~ 23.5% of the PoS blocks. If we calculate a week window average probability p7, for this address to mine a PoS block, p7 should has decreased from over 30% to now ~ 24%, which is not a constant but decreasing, so p=1/5.8 will decrease and the probability for a double spending will also decrease.

Some other addresses who own more coins but don’t mint so often don’t have more opportunity to do the double spending. As we know, some one owns more than 1M coins but doesn’t mine PoS block so often and doesn’t get so many PoS reward. Take the above PoSMinerTop1000 for example, the most PoS Rewards address is PXbvMzM1w3Y3Ft6BzR9BFkoapY5rghvT6J , who got more than 8000 PoS rewarding coins, but doesn’t have so many active tx stake input because of the lack of participation of PoS minting. As seen from http://stakexplorer.com:2750/acdc/PXbvMzM1w3Y3Ft6BzR9BFkoapY5rghvT6J , that address will most possibly get a 2-chain PoS block. To get a 6-chain PoS block, one address should have far more than 6 active ( more than 30 mature days) stake tx inputs, which doesn’t always mean that the address has the most coins.

On the other hand, as the corase input of the tx split, more and more tx input becomes fine; at the same time, there is also PoS tx combination. I think such a PoS minting design should benefit for the PoS network security.

It’s my personal understanding. Please correct me if it’s wrong.

The HAVE the opportunity. They just choose not to use it. The one with one million coins have twice the minting power and can double spend twice every week (every 170/2^6 days ~ 3days). But the whales either don’t do it or we haven’t found out how they are gaming the system.

To get a 6-chain PoS block, one address should have far more than 6 active ( more than 30 mature days) stake tx inputs, which doesn't always mean that the address has the most coins.

The address P8tx… has thousands stakes and perhaps mints 24 hours a day. So every stakes can take 100-200 days to find a block.

On the other hand, as the corase input of the tx split, more and more tx input becomes fine;

It’s not difficult to merge split POS outputs together, after they can be spent again of course, to increase stake size using a script.

Wow, that person must love to mint ! On a more serious note, at this moment in time, this is a concern. I think this issue stems from the fact that not enough people are minting at the moment (like OP mentioned), and I believe this is mostly down to its complicated process and people being unfamiliar with how it works.That's certainly why I don't mint at the moment. Now, the solution to this is obviously further wallet development, better/more explanations as to how minting works and its benefits.

There's still a lot of work to be done

Cheers.

There’s still a lot of work to be done

Cheers.[/quote]

And this is why we still have checkpointing right? It protects the network from things like this until it’s large and spread out enough to support itself.

Exchanges with coins… Yea Ive thought about how that kind of thing could turn nasty: http://www.peercointalk.org/index.php?topic=2351.msg19208#msg19208 People should move their coins of exchanges asap after they bought them (always good to doo anyway)

And this is why we still have checkpointing right? It protects the network from things like this until it's large and spread out enough to support itself.

There’s still a lot of work to be done

Cheers.[/quote]

And this is why we still have checkpointing right? It protects the network from things like this until it’s large and spread out enough to support itself.[/quote]

Good point! Also a big whale shots itself in the fin if attacking the network.

Good point! Also a big whale shots itself in the fin if attacking the network.

There’s still a lot of work to be done

Cheers.[/quote]

And this is why we still have checkpointing right? It protects the network from things like this until it’s large and spread out enough to support itself.[/quote]

Good point! Also a big whale shots itself in the fin if attacking the network.[/quote]

Yes, Peerunity, single click minting, cold-locked transactions and better documentation should help solve this problem over time. Once it becomes a lot easier and safer, many more people will mint. I still haven’t even started doing this yet.

+1

Checkpointing could be too late for the damage done. For example someone doublespends by sending coins to an exchange, confirms with an attacking chain, gets credited then cancels the send transaction, gets the coins in his account exchanged other coins and withdraws. By the time checkpointing reacts the exchange would have already lost its money for good.

Before Peercoin network is large and strong we perhaps should go extra miles to educate service providers that

1. If there is a large incoming POS deposite, limit withdrawl from the account before (for example) 20 confirmations;
2. Tightly control who can access POS coins in large business wallet to minimize the possibility of attack by unauthorized POS minting.

Checkpointing could be too late for the damage done. For example someone doublespends by sending coins to an exchange, confirms with an attacking chain, gets credited then cancels the send transaction, gets the coins in his account exchanged other coins and withdraws. By the time checkpointing reacts the exchange would have already lost its money for good.

Before Peercoin network is large and strong we perhaps should go extra miles to educate service providers that

1. If there is a large incoming POS deposite, limit withdrawl from the account before (for example) 20 confirmations;
2. Tightly control who can access POS coins in large business wallet to minimize the possibility of attack by unauthorized POS minting.[/quote]

Flashing this kind of official warning could be seen as a major weakness telling people to stay away, because the coin is still far to immature. How likely is this attack to happen?

On the other hand, IF something like this would happen, it would be clear that people should stay away because the coin is for to immature.

Then again, why on earth would someone with so much coins so that they could do this, do such a thing? Maybe if someone bought heck of a lot of coins, did the attack and then sold of all of the coins then the attack would be without cost to the attacker. But, who can sell that many coins without driving down the price so much that it crashes? Using multiple exchanges? Is the market still deep enough? I’m skeptical.

[quote=“pillow, post:11, topic:2284”][quote=“mhps, post:10, topic:2284”]Before Peercoin network is large and strong we perhaps should go extra miles to educate service providers that

1. If there is a large incoming POS deposite, limit withdrawl from the account before (for example) 20 confirmations;
2. Tightly control who can access POS coins in large business wallet to minimize the possibility of attack by unauthorized POS minting.[/quote]

Flashing this kind of official warning could be seen as a major weakness telling people to stay away, because the coin is still far to immature. How likely is this attack to happen?[/quote]

I think it’s better to give the immunization shot and bear with the short term pain than not do it and suffer a blow in the future, when, say, PPC is \$100.
The whole crpoyworld is still far too immature. Mt. Gox could disappear within weeks. Better to get that reality in mind.

Then again, why on earth would someone with so much coins so that they could do this, do such a thing?

They may not do this. Their staff could do it e.g. for personal gains or for retaliating the boss. That is why the #2 above.
Actually judging from the dodgy behaviors of many of the small exchanges, I am not surprised that if some of them use public coins for quick “extra income” at the cost the community.

The suggest action is about pretty much all POS coins. There are no less than 40 of them. Peercoin is certainly not he weakest of them. Anyone of them has POS trouble will be seen as everyone else’ trouble.

I just pulled in a list 400 blocks found by the same address,and examined the list. Guess what I find? A consecutive row of 6 blocks are found by this address! From the snippet below you can see that starting from the first block, the number of confirmation is 94, 95, 96, 97, 98, 99, indicating that there is no block found by other addresses interrupting the queue.

This address now has 548,467 PPC (2.54% of money supply). POS difficulty is now 11.4. The network has found 1639 blocks in the period when this address found these 400. So this address finds 24.4% of all blocks. Of these 400, there are 109 consecutive 2 blocks (called 2-chain hereafter), 29 3-chains, 6 4-chains, 2 5-chains, and 1 6-chain. A 6-chain now contributes 2 5-chains, 3 4-chains, and so on. (In the OP I only counted one 3-chain in the 4-chain, which I think is not right. I will correct it)

Thanks for bringing this to the attention of the community mphs! Besides increasing number of confirmations, I’m not sure what can be done about it.

If its a person holding those coins (and not an exchange) I guess some coins will be sold if the price goes up.

If the address is an individual, it may be sold as the price goes up.

If the address is an exchange, it probably will shrink, as Peercoin becomes better distributed. I actually think it’s more likely to shrink if it’s an exchange.

Also, if it’s an exchange, it’s probably BTC-e. :

[quote=“Chronos, post:15, topic:2284”]If the address is an individual, it may be sold as the price goes up.

If the address is an exchange, it probably will shrink, as Peercoin becomes better distributed. I actually think it’s more likely to shrink if it’s an exchange.

Also, if it’s an exchange, it’s probably BTC-e. ::)[/quote]

Yes I guess you are right.

Yes I guess you are right.[/quote]

I take a look at the early transaction history of this address. The balance in this address was mainly accumulated from mining in the first few months after PPC was released. So the owner is an early adopter who probably has no interest in harming Peercoin by initiating a 51% attack to the network.

The issue may become serious when the owner is blackmailed or threatened though

I wouldn’t be surprised if they are Sunny King’s peercoins. :))

Is it possible to work out the “target difficulty” that we should aim for, in the short term at least.

i.e. the PoS difficulty at which the single richest address couldn’t double-spend within a year, or something like that.